RSA signing keys (was: Re: SHA1 broken?)

Gregor Zattler texmex at
Fri Feb 18 15:06:22 CET 2005

Hi David,
* David Shaw <dshaw at> [16. Feb. 2005]:
> In terms of GnuPG: it's up to you whether you want to switch hashes or
> not.  GnuPG supports all of the SHA-2 hashes, so they are at least
> available.  Be careful you don't run up against compatibility
> problems: PGP doesn't support 384 or 512, and only recently started
> supporting 256.  GnuPG before 1.2.2 (2003-05-01), doesn't have any of
> the new hashes.  Finally, if you have a DSA signing key (most people
> do) you are required to use either SHA-1 or RIPEMD/160.  RSA signing
> keys can use any hash.

Do you advise to use RSA signing keys with gnupg 1.4.1?  Will the
default key type change?


More information about the Gnupg-users mailing list